Privacy Policy

Last updated: July 2025 · Pass Dupe Detector by PrivMITLab

🔒 Your data never leaves your browser. Period.

1. No Data Collection

Pass Dupe Detector does not collect, store, transmit, or process any of your data on any server. There is no backend. There are no API calls. Your password files are read and processed entirely within your browser using JavaScript.

2. No Cookies

This application does not set any cookies. We use localStorage solely to remember your theme preference (dark/light mode) and last-used settings. This data never leaves your device.

3. No Analytics or Tracking

There are no analytics scripts, no tracking pixels, no fingerprinting, no telemetry. We do not use Google Analytics, Mixpanel, Hotjar, or any similar service.

4. No Advertisements

This application contains no advertisements and never will.

5. Local Storage

The app may use the following browser storage mechanisms:

localStorage – Stores user preferences (theme, match rules). Contains no sensitive data.
IndexedDB – Temporarily stores imported password entries for processing. This data exists only in your browser and is cleared when you use the "Reset All" function.
Service Worker Cache – Caches the app's static files (HTML, CSS, JS) for offline use. Contains no user data.

6. File Handling

When you import a CSV or JSON file:

The file is read using the browser's FileReader API
Parsing and processing happen in-memory using JavaScript
No file is ever uploaded to any server
Exported files are generated locally and downloaded directly to your device

7. How to Delete Your Data

You can delete all locally stored data at any time:

Click the "Reset All" button in the app sidebar
Or clear your browser's site data for this domain
Or use your browser's "Clear browsing data" feature

8. Open Source

This application is fully open source. You can inspect every line of code at github.com/PrivMITLab/pass-dupe-detector.

9. Third-Party Services

This application uses zero third-party services, libraries, CDNs, or external resources. Everything runs from static files served alongside this page.

10. Contact

For questions about this privacy policy, please open an issue on our GitHub repository.

✅ We believe privacy is a fundamental right. This app was built to prove that useful tools can exist without compromising your data.